Automated GDPR Contract Compliance Verification Using Knowledge Graphs

Tauqeer, Amar; Kurteva, Anelia; Chhetri, Tek Raj; Ahmeti, Albin; Fensel, Dieter

doi:10.3390/info13100447

Cited by 14 publications

(8 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…smashHitCore, which is a basis for the smashHit legal knowledge graph (KG) (see Figure 5b in [9]), has been used in the compliance verification tool [9,14] that is developed as a part of the smashHit project to enable legally compliant data exchange in the smart city and insurance use case scenarios (see Section 2). Our work [9,14], which makes use of the smashHitCore ontology, has been evaluated in real-world insurance and smart city scenarios. Details regarding the integration and testing are available in [55,56].…”

Section: Application Of Smashhitcore For Gdpr Compliancementioning

confidence: 99%

“…The semantic annotation of one's informed consent and contracts (i.e., building the KG), their management and use for compliance are the main tasks of our automated compliance verification tools presented in [9,14]. In [9,14], by following a microservices [57] architecture, which supports scalability (see [58]), we have presented two tools that fully automate the GDPR compliance verification processes for both consent and contract. The tools adhere to the principle of data protection by design (Rec.…”

Section: Application Of Smashhitcore For Gdpr Compliancementioning

confidence: 99%

“…The two main tools presented in [9,14], which utilise the smashHitCore ontology, were developed as a part of the smashHit project. These tools were further used by other use case-specific software components that were also part of the smashHit project, namely data use traceability [66] and the context sensitivity solution [67] in the connected car and smart city feedback application [55].…”

Section: Interoperability and Performance Evaluationmentioning

confidence: 99%

“…smashHitCore, which is openly available, reuses and extends existing ontologies to provide a harmonised model for consent, contracts, sensor data and its processing. smashHitCore can be used in simpler cases such as informed consent modelling based on GDPR or more complex ones such as automatic contracting (i.e., automatic contract generation, signing and execution) and automated compliance verification based on one's informed consent (see [9,14]).…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

The smashHitCore Ontology for GDPR-Compliant Sensor Data Sharing in Smart Cities

Kurteva

Chhetri

Tauqeer

et al. 2023

Sensors

Self Cite

View full text Add to dashboard Cite

The adoption of the General Data Protection Regulation (GDPR) has resulted in a significant shift in how the data of European Union citizens is handled. A variety of data sharing challenges in scenarios such as smart cities have arisen, especially when attempting to semantically represent GDPR legal bases, such as consent, contracts and the data types and specific sources related to them. Most of the existing ontologies that model GDPR focus mainly on consent. In order to represent other GDPR bases, such as contracts, multiple ontologies need to be simultaneously reused and combined, which can result in inconsistent and conflicting knowledge representation. To address this challenge, we present the smashHitCore ontology. smashHitCore provides a unified and coherent model for both consent and contracts, as well as the sensor data and data processing associated with them. The ontology was developed in response to real-world sensor data sharing use cases in the insurance and smart city domains. The ontology has been successfully utilised to enable GDPR-complaint data sharing in a connected car for insurance use cases and in a city feedback system as part of a smart city use case.

show abstract

Section: Application Of Smashhitcore For Gdpr Compliancementioning

confidence: 99%

Section: Application Of Smashhitcore For Gdpr Compliancementioning

confidence: 99%

Section: Interoperability and Performance Evaluationmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

The smashHitCore Ontology for GDPR-Compliant Sensor Data Sharing in Smart Cities

Kurteva

Chhetri

Tauqeer

et al. 2023

Sensors

Self Cite

View full text Add to dashboard Cite

show abstract

“…Many scholars have already discussed the application of blockchain in automotive supply chain information sharing and traceability [ 11 , 12 , 13 ] and demonstrated the effectiveness of such solutions. However, as privacy and information security issues become more prominent, especially after the enactment of regulations such as the General Data Protection Regulation (GDPR) in the European Union (EU) [ 14 , 15 ], the challenge of achieving blockchain-based supply chain information sharing while protecting sensitive corporate information (e.g., transaction records, product batch information, logistics information) becomes crucial [ 16 ]. Moreover, existing solutions mostly directly store data on the blockchain, which undoubtedly brings tremendous storage pressure and reduces overall performance in large-scale data sharing scenarios.…”

Section: Introductionmentioning

confidence: 99%

Blockchain-Based Secure Storage and Access Control Scheme for Supply Chain Ecological Business Data: A Case Study of the Automotive Industry

Zhou

Yang

et al. 2023

Sensors

View full text Add to dashboard Cite

The reliable circulation of automotive supply chain data is crucial for automotive manufacturers and related enterprises as it promotes efficient supply chain operations and enhances their competitiveness and sustainability. However, with the increasing prominence of privacy protection and information security issues, traditional data sharing solutions are no longer able to meet the requirements for highly reliable secure storage and flexible access control. In response to this demand, we propose a secure data storage and access control scheme for the supply chain ecosystem based on the enterprise-level blockchain platform Hyperledger Fabric. The design incorporates a dual-layer attribute-based auditable access control model for access control, with four smart contracts aimed at coordinating and implementing access policies. The experimental results demonstrate that the proposed approach exhibits significant advantages under large-scale data and multi-attribute conditions. It enables fine-grained, dynamic access control under ciphertext and maintains high throughput and security in simulated real-world operational scenarios.

show abstract

Software verification challenges in the blockchain ecosystem

Olivieri,

Spoto

2024

Int J Softw Tools Technol Transfer

View full text Add to dashboard Cite

Blockchain technology has created a new software development context, with its own peculiarities, mainly due to the guarantees that the technology must satisfy, that is, immutability, distributability, and decentralization of data. Its rapid evolution over the last decade implied a lack of adequate verification tools, exposing developers and users to critical vulnerabilities and bugs. This paper clarifies the extent of block chain-oriented software (BoS), that goes well beyond smart contracts. Moreover, it provides an overview of the challenges related to software verification in the blockchain context, encompassing smart contracts, blockchain layers, cross-chain applications, and, more generally, BoS. This study aims to highlight the shortcomings of the state-of-art and of the state-of-practice of software verification in that context and identify, at the same time, new research directions.

show abstract

Automated GDPR Contract Compliance Verification Using Knowledge Graphs

Cited by 14 publications

References 41 publications

The smashHitCore Ontology for GDPR-Compliant Sensor Data Sharing in Smart Cities

The smashHitCore Ontology for GDPR-Compliant Sensor Data Sharing in Smart Cities

Blockchain-Based Secure Storage and Access Control Scheme for Supply Chain Ecological Business Data: A Case Study of the Automotive Industry

Software verification challenges in the blockchain ecosystem

Contact Info

Product

Resources

About